آسیبپذیریهای حیاتی هفته چهارم آذرماه
این هفته آسیبپذیری حیاتی محصولات Citrix به شدت خبرساز شد. چرا که این آسیبپذیری نه تنها سطح خطر بسیار بالایی داشت بلکه تمامی محصولات این شرکت را تحت تأثیر قرار داده است. یکی دیگر از مهمترین آسیبپذیریهای شناساییشده در این هفته مربوط به وبسایتهای تحت دروپال است که اجازه میدهند فایلهایی با فرمت .tar.gz، .bz2 و .tlz توسط کاربران غیرقابل اعتماد بارگذاری شوند. آسیبپذیری مهم دیگر این هفته نیز مربوط به نرمافزار پایتون و مرورگر کروم است. لطفاٌ بهروزرسانیهای لازم را انجام دهید.
| نوع آسیبپذیری | محصولات آسیبپذیر | شناسه آسیبپذیری |
|
Remote Code Execution |
Citrix Application Delivery Controller¹ (NetScaler ADC) and Citrix Gateway (NetScaler Gateway) --- all supported versions of the product, and all supported platforms |
CVE-2019-19781 |
|
Unrestricted Upload of File with Dangerous Type |
joomla -- joomla! |
CVE-2019-19634 |
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') |
joomla -- joomla! |
CVE-2019-19846 |
|
Denial of Service |
Drupal core in version 8.8.x-dev and 8.7.x-dev |
SA-CORE-2019-009 |
|
Multiple vulnerabilities |
Drupal core in version 8.8.x-dev and 8.7.x-dev |
SA-CORE-2019-010 |
|
Access bypass |
Drupal core in version 8.8.x-dev and 8.7.x-dev |
SA-CORE-2019-011 |
|
Multiple vulnerabilities |
Drupal core in version 8.8.x-dev, 8.7.x-dev and ۷.x-dev |
SA-CORE-2019-012 |
|
Remote Code Execution |
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software |
CVE-2019-15992 |
|
Use after free |
Google chrome |
CVE-2019-13767 |
|
weak authentication |
python-requests-Kerberos Mutual Authentication |
CVE-2014-8650 |
|
information disclosure |
Apache Incubator Superset Database Metadata |
CVE-2019-12413 |
|
information disclosure |
Apache Incubator Superset SQLLab |
CVE-2019-12414 |
|
privilege escalation |
D-Link DIR-615 Portal |
CVE-2019-19743 |
|
privilege escalation |
Dell XPS 13 2-in-1 BIOS Configuration |
CVE-2019-18579 |
|
privilege escalation |
IBM Planning Analytics TM1 Script |
CVE-2019-4716 |
|
cross site scripting |
IBM Financial Transaction Manager Web UI |
CVE-2019-4744 |
|
privilege escalation |
IBM Financial Transaction Manager Clickjacking |
CVE-2019-4742 |
|
privilege escalation |
Intel Management Engine Consumer Driver Directory Permission |
CVE-2019-11097 |
|
privilege escalation |
Intel CSME/TXE/Detection Tool Access Control |
CVE-2019-11147 |
|
weak authentication |
Intel CSME/TXE Subsystem |
CVE-2019-11110 |
|
privilege escalation |
Intel CSME/TXE Subsystem |
CVE-2019-11087 |
|
privilege escalation |
Intel CSME/TXE Subsystem |
CVE-2019-11106 |
|
memory corruption |
Intel CSME/TXE Subsystem Heap-based |
CVE-2019-0169 |
|
privilege escalation |
Intel CSME/TXE |
CVE-2019-11104 |
|
privilege escalation |
Intel CSME Subsystem |
CVE-2019-11105 |
|
privilege escalation |
Intel CSME Subsystem |
CVE-2019-11108 |
|
privilege escalation |
Intel CSME Firmware Update |
CVE-2019-11103 |
|
privilege escalation |
Intel AMT Subsystem |
CVE-2019-11088 |
|
privilege escalation |
Intel AMT Subsystem |
CVE-2019-11107 |
|
privilege escalation |
Intel AMT Subsystem |
CVE-2019-11131 |
|
privilege escalation |
Intel AMT |
CVE-2019-0131 |
|
information disclosure |
Intel AMT |
CVE-2019-0166 |
|
privilege escalation |
Intel CPU |
CVE-2019-14607 |
|
privilege escalation |
Intel CPU |
CVE-2019-11157 |
|
privilege escalation |
Intel Dynamic Platform and Thermal Framework |
CVE-2019-0134 |
|
privilege escalation |
Intel Network Adapter Linux Administrative Tools |
CVE-2019-0159 |
|
privilege escalation |
Intel NUC Access Control |
CVE-2019-14610 |
|
memory corruption |
Intel NUC Firmware Integer Overflow |
CVE-2019-14611 |
|
memory corruption |
Intel NUC Firmware Out-of-Bounds |
CVE-2019-14612 |
|
privilege escalation |
Intel NUC Firmware Validation |
CVE-2019-14609 |
|
memory corruption |
Intel NUC |
CVE-2019-14608 |
|
privilege escalation |
Intel Quartus Prime Pro Edition icense Server |
CVE-2019-14603 |
|
privilege escalation |
Intel RST |
CVE-2019-14568 |
|
privilege escalation |
Intel SCS Platform Discovery Utility Installer |
CVE-2019-14605 |
|
denial of service |
knot-resolver DNS Reply |
CVE-2019-19331 |
|
privilege escalation |
Linux Kernel Thread sendmsg() |
|
|
memory corruption |
Linux Kernel btrfs Filesystem mutex.c __mutex_lock |
CVE-2019-19813 |
|
memory corruption |
Linux Kernel btrfs Filesystem volumes.c __btrfs_map_block |
CVE-2019-19816 |
|
memory corruption |
Linux Kernel f2fs Filesystem Image __remove_dirty_segment |
CVE-2019-19814 |
|
denial of service |
Linux Kernel f2fs Filesystem Image recovery.c |
CVE-2019-19815 |
|
privilege escalation |
Linux Kernel io-wq.c |
CVE-2019-19241 |
|
memory corruption |
Linux Kernel timer.c snd_timer_close_locked |
CVE-2019-19807 |
|
memory corruption |
Nitro Free PDF Reader Unicode npdf.dll PDAnnotHandlerDestroyData2+0xa08a |
CVE-2019-19818 |
|
privilege escalation |
Trend Micro HouseCall for Home Networks DLL |
CVE-2019-19688 |
|
privilege escalation |
Trend Micro HouseCall for Home Networks DLL |
CVE-2019-19689 |
|
privilege escalation |
Trend Micro Security 2020 |
CVE-2019-19693 |
|
weak authentication |
RSA Identity Governance and Lifecycle Session Session Fixation |
CVE-2019-18573 |
|
weak authentication |
RSA Identity Governance and Lifecycle JMX Agent |
CVE-2019-18572 |
|
privilege escalation |
Opera Web Browser Sandbox Cross-Origin |
CVE-2019-19788 |
|
memory corruption |
Qualcomm Snapdragon Auto WMI Message Out-of-Bounds |
CVE-2019-10601 |
|
memory corruption |
Qualcomm Snapdragon Auto Wireless Driver Out-of-Bounds |
CVE-2019-10557 |
|
memory corruption |
Qualcomm Snapdragon Auto Video Driver Integer Overflow |
CVE-2019-10572 |
|
privilege escalation |
Qualcomm Snapdragon Auto RPU Write |
CVE-2019-2274 |
|
memory corruption |
Qualcomm Snapdragon Auto Out-of-Bounds |
CVE-2019-10607 |
|
memory corruption |
Qualcomm Snapdragon Auto Out-of-Bounds |
CVE-2019-10614 |
|
memory corruption |
Qualcomm Snapdragon Auto Netlink CB Callback Stack-based |
CVE-2019-10600 |
|
memory corruption |
Qualcomm Snapdragon Auto Message |
CVE-2019-10595 |
|
memory corruption |
Qualcomm Snapdragon Auto |
CVE-2019-10544 |
|
memory corruption |
Qualcomm Snapdragon Auto |
CVE-2019-2242 |
|
memory corruption |
Qualcomm Snapdragon Auto IEEE 802.11 Header |
CVE-2019-10605 |
|
memory corruption |
Qualcomm Snapdragon Auto IBSS Connection Mode Out-of-Bounds |
CVE-2019-10598 |
|
memory corruption |
Qualcomm Snapdragon Auto Event Argument Integer Overflow |
CVE-2019-2304 |
|
Out-of-Bounds |
Qualcomm Snapdragon Auto EEPROM |
CVE-2019-10564 |
|
memory corruption |
Qualcomm Snapdragon Auto Debug Queue |
CVE-2019-10584 |
|
weak authentication |
GitLab Community Edition/Enterprise Edition Salesforce Login |
CVE-2019-5486 |
|
privilege escalation |
GitLab Community Edition/Enterprise Edition Project Archive |
CVE-2019-5469 |
|
privilege escalation |
GitLab Community Edition/Enterprise Edition Clone |
CVE-2019-15589 |
|
command injection |
GitLab Community Edition/Enterprise Edition API |
CVE-2019-15575 |
|
Remote Code Execution |
Git Clone |
CVE-2019-1387 |
|
privilege escalation |
Django Password Reset |
CVE-2019-19844 |
|
Code Execution |
Asus ATK AsLdrSrv.exe |
CVE-2019-19235 |
|
privilege escalation |
Adobe ColdFusion Permission |
CVE-2019-8256 |
|
memory corruption |
Adobe Photoshop CC Code Execution |
CVE-2019-8254 |
|
memory corruption |
Adobe Photoshop CC Code Execution |
CVE-2019-8253 |
|
privilege escalation |
sudo |
CVE-2019-19234 |
|
privilege escalation |
sudo Runas |
CVE-2019-19232 |